Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft
File: baFr8M0J73aPkCE7ZtjLw86TQgY.mft (raw, json)
Hash identifier: kAYlihbqXoEZKa3YSolHC+q+BKtc/j4pSEKHNJ39kg0=
Subject key identifier: 5C:83:B4:87:70:B4:A2:DF:5B:B4:E8:12:E3:1F:40:E7:EA:14:DB:96
Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06
Certificate issuer: /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206
Certificate serial: 0729
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft
Manifest number: 0720
Signing time: Fri 28 Mar 2025 22:07:48 +0000
Manifest this update: Fri 28 Mar 2025 22:07:48 +0000
Manifest next update: Fri 04 Apr 2025 22:07:48 +0000
Files and hashes: 1: baFr8M0J73aPkCE7ZtjLw86TQgY.crl (hash: su8oA5ikkdh6VP6L2KCMIVqNk227psDy7CQDnMax7Gg=)
2: 0A866A522EAB11EBAB198239C4F9AE02.roa (hash: y8a8NpATY6YYaN1sCCi6QGlP5oTWUdFfM/H2gKyeO+A=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1833 (0x729)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9151B71
Validity
Not Before: Mar 28 22:07:48 2025 GMT
Not After : Apr 4 22:07:48 2025 GMT
Subject: CN=67e71db4-6863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7e:0b:39:3c:75:d7:01:33:70:91:30:f5:88:
50:79:e9:87:e3:c3:30:49:1f:97:3f:b3:5c:d0:83:
24:e4:86:09:2c:e3:6c:f3:59:1e:13:dd:b5:8e:38:
55:0e:81:0f:df:a3:9c:da:08:75:49:d1:48:2d:dc:
1d:83:70:e2:79:ab:62:f0:c2:f6:2a:dd:6f:f4:33:
e8:07:46:52:06:3f:42:1d:b0:8d:cf:f5:21:12:f2:
11:03:e2:1e:5a:a2:fe:0d:f0:a6:58:36:46:74:8d:
6d:2b:22:97:6e:69:d8:84:55:21:2d:9d:30:9f:79:
44:6e:a1:f9:f3:43:f5:a3:74:2c:42:fb:82:bc:e3:
cb:b8:02:d2:50:c8:f6:85:84:13:95:2d:63:c9:59:
50:a2:73:f6:cb:2d:da:a1:a7:ee:81:47:e9:ff:15:
70:ab:9b:8b:59:23:e0:77:0a:28:10:fc:f8:49:b6:
25:d9:36:a9:87:b0:a0:b2:1b:55:8e:b2:cb:f8:82:
5f:f8:11:5a:c6:da:96:c3:da:ed:38:63:22:bd:ae:
a9:d7:4d:77:34:33:63:5e:50:38:e6:7d:7c:74:dd:
bd:09:82:c3:be:2c:38:e3:d3:6b:2f:a3:23:8f:f1:
0d:40:28:c2:bb:77:57:73:2c:8c:b2:15:23:3c:0c:
14:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:83:B4:87:70:B4:A2:DF:5B:B4:E8:12:E3:1F:40:E7:EA:14:DB:96
X509v3 Authority Key Identifier:
keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
35:84:69:52:c3:28:9e:f9:72:e8:40:ff:bd:5c:76:ac:96:51:
f8:a8:3e:4c:ba:c8:04:df:06:ef:60:f4:56:41:89:2a:ff:80:
5d:76:25:f6:8f:8a:b2:e8:c4:0a:c2:2c:6c:61:01:54:7a:16:
58:8d:41:a7:c8:6c:38:73:c8:c9:86:73:e7:82:e9:0f:25:20:
f4:5f:77:aa:6a:a4:20:07:06:15:d2:96:af:39:47:7d:14:51:
90:5d:cc:a9:05:d8:e8:de:93:cc:ea:ac:98:00:da:b3:ee:a8:
6e:08:67:2c:17:a4:5e:c7:70:1d:f0:e4:73:e1:09:33:3c:e6:
c9:9c:f5:33:a8:10:b0:a0:e0:5d:7d:f6:53:6c:6d:99:96:8f:
e3:07:bf:c6:be:4b:81:ad:50:0f:8f:40:f1:72:9f:59:07:13:
6e:91:05:2d:5e:55:44:e1:83:d8:84:63:69:5a:86:5b:d4:73:
05:33:ff:ef:7f:8c:2a:19:10:7e:d2:8c:99:92:2f:0a:17:4f:
2c:0c:3b:6b:9f:57:4c:38:c2:09:31:eb:81:23:72:54:99:a4:
b7:c6:56:93:56:73:ca:b0:da:fe:df:f3:2e:ee:4f:c4:62:d3:
f7:7e:3b:4a:9a:75:f7:ac:73:ae:d3:b8:85:8e:3c:4e:64:d8:
ed:2f:2d:3d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICBykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz
Q0U5MzQyMDYwHhcNMjUwMzI4MjIwNzQ4WhcNMjUwNDA0MjIwNzQ4WjAYMRYwFAYD
VQQDEw02N2U3MWRiNC02ODYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzX4LOTx11wEzcJEw9YhQeemH48MwSR+XP7Nc0IMk5IYJLONs81keE921jjhV
DoEP36Oc2gh1SdFILdwdg3Dieati8ML2Kt1v9DPoB0ZSBj9CHbCNz/UhEvIRA+Ie
WqL+DfCmWDZGdI1tKyKXbmnYhFUhLZ0wn3lEbqH580P1o3QsQvuCvOPLuALSUMj2
hYQTlS1jyVlQonP2yy3aoafugUfp/xVwq5uLWSPgdwooEPz4SbYl2Taph7CgshtV
jrLL+IJf+BFaxtqWw9rtOGMiva6p1013NDNjXlA45n18dN29CYLDviw449NrL6Mj
j/ENQCjCu3dXcyyMshUjPAwUMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyDtIdw
tKLfW7ToEuMfQOfqFNuWMB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF
QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR
Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
MUI3MS85RkQ1RjgwRTJFQTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjcz
YVBrQ0U3WnRqTHc4NlRRZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQA1hGlSwyie+XLoQP+9XHasllH4qD5MusgE3wbvYPRWQYkq/4BddiX2
j4qy6MQKwixsYQFUehZYjUGnyGw4c8jJhnPngukPJSD0X3eqaqQgBwYV0pavOUd9
FFGQXcypBdjo3pPM6qyYANqz7qhuCGcsF6Rex3Ad8ORz4QkzPObJnPUzqBCwoOBd
ffZTbG2Zlo/jB7/GvkuBrVAPj0Dxcp9ZBxNukQUtXlVE4YPYhGNpWoZb1HMFM//v
f4wqGRB+0oyZki8KF08sDDtrn1dMOMIJMeuBI3JUmaS3xlaTVnPKsNr+3/Mu7k/E
YtP3fjtKmnX3rHOu07iFjjxOZNjtLy09
-----END CERTIFICATE-----
Generated at Mon Apr 7 18:22:55 2025 by rpki-client